explaingit

nesqcck/mcp-registry-audit

Analysis updated 2026-05-18

1PythonAudience · developerComplexity · 3/5Setup · moderate

TLDR

A read-only CLI that scans public MCP server registries to flag packages that look like fakes or have quietly turned malicious between versions, without ever running the packages it checks.

Mindmap

mindmap
  root((mcp-registry-audit))
    What It Does
      Scan MCP registries
      Flag lookalike names
      Detect version drift
    Pipelines
      Lookalike detection
      Rug-pull diff
    Output
      Ranked candidates
      JSON CSV XLSX
    Tech Stack
      Python httpx
      pydantic typer rapidfuzz
    Design Principles
      Read-only only
      No code execution
      Human review step
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Scan a public MCP registry for server names that mimic popular trusted packages before adding one to your project.

USE CASE 2

Compare two published versions of an MCP server to spot newly introduced network calls or obfuscated code.

USE CASE 3

Generate a ranked CSV of suspicious candidates for your team to review before deploying any MCP tooling.

What is it built with?

Pythonhttpxpydantictyperrapidfuzz

How does it compare?

nesqcck/mcp-registry-audita-bissell/unleash-liteabhiinnovates/whatsapp-hr-assistant
Stars111
LanguagePythonPythonPython
Setup difficultymoderatehardhard
Complexity3/54/53/5
Audiencedeveloperresearcherdeveloper

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · moderate Time to first run · 30min

Requires Python 3.12+ and a virtual environment, a GitHub API token is optional but needed for richer enrichment results.

No license information was found in the README.

In plain English

MCP (Model Context Protocol) is an open standard that lets AI systems connect with external tools and data sources. As more developers publish these tool servers to public registries, a new category of supply-chain risk has emerged: a server can start out benign, gain adoption, and then introduce malicious code in a later version, or someone can create a server whose name closely resembles a trusted one to trick developers into installing a fake. mcp-registry-audit is a command-line tool that scans public MCP registries to surface both of these threats before a developer ever installs anything. It is strictly read-only: the tool fetches only public metadata over plain HTTP, and it never installs, runs, imports, or unpacks any of the packages it inspects. Any suspicious URLs found inside a package listing are treated as text to score, not addresses to contact. The tool runs two separate detection pipelines. The lookalike pipeline checks server names against a list of known brands using name-distance calculations, homoglyph detection (where characters look similar but differ), and signals like a mismatch between publisher and brand name, a very new repository, or an official-sounding name from a low-trust account. The version-drift pipeline fetches consecutive published versions of a server from npm, PyPI, or GitHub and compares them to find newly added outbound network calls, hardcoded endpoints, install hooks, or signs of obfuscation. Each flagged candidate comes with a named signal and its evidence, so a human can read the source and decide whether to dismiss or investigate further. To use it, a developer clones the repository, sets up a Python virtual environment, installs the package, then runs commands like hunt pull, hunt lookalikes, or hunt diff. Results are saved locally as JSON, CSV, and spreadsheet files. Setting a GitHub API token in the environment allows the tool to retrieve richer data during enrichment. All cache and output files stay local. The project is built on Python 3.12 and uses httpx for network requests, pydantic for data modeling, typer for the command-line interface, and rapidfuzz for name-distance scoring.

Copy-paste prompts

Prompt 1
I want to check whether any MCP servers in the public registry are impersonating well-known tools. Show me how to run the lookalike pipeline in mcp-registry-audit step by step.
Prompt 2
Walk me through using mcp-registry-audit to diff the last two published versions of an MCP server and explain which output signals would indicate a rug-pull.
Prompt 3
I want to export a ranked list of suspicious MCP servers to a CSV using mcp-registry-audit. Show me the exact commands and what each output column means.
Prompt 4
Help me set up mcp-registry-audit with a GitHub token so I can enrich my scan results with contributor-graph data.

Frequently asked questions

What is mcp-registry-audit?

A read-only CLI that scans public MCP server registries to flag packages that look like fakes or have quietly turned malicious between versions, without ever running the packages it checks.

What language is mcp-registry-audit written in?

Mainly Python. The stack also includes Python, httpx, pydantic.

What license does mcp-registry-audit use?

No license information was found in the README.

How hard is mcp-registry-audit to set up?

Setup difficulty is rated moderate, with roughly 30min to a first successful run.

Who is mcp-registry-audit for?

Mainly developer.

Open on GitHub → Explain another repo

This repo across BitVibe Labs

Scan in gitsafehub Deploy in gitdeployhub nesqcck on gitmyhub

Verify against the repo before relying on details.